php curl_exec vulnerability with cloudlinux

Collapse
X
 
  • Time
  • Show
Clear All
new posts
  • simplysup
    Junior Member
    Forum Explorer
    • Mar 2021
    • 26

    #1

    php curl_exec vulnerability with cloudlinux

    Dear Guys,

    Ive installed cpanel with cloudlinux and cagefs.
    I want to know some details about php functions vulnerabilities.
    many of our customers need some functions like curl_exec, phpinfo , ... .
    Is there any vulnerability with those functions (specially curl_exec) I mentioned above?
    Please share with me.
    Thank you very much.

    Regards.
  • ighertesco
    Senior Member
    • Nov 2016
    • 184

    #2
    Hello,

    Each users process is executed inside the "cage", i.e. the real file system is not visible to the customer. So it is pretty safe to allow using required PHP functions. In other words, the user wont be able to harm the server if the account will be compromised, but it does not protect the account from customers software vulnerabilities, such as outdated CMS, etc

    Comment

    Working...